Limit access to hosts that have sssd running

2025-01-31 17:01:03 +00:00 · 2025-01-31 17:01:03 +00:00 · dc9a3a0725
commit dc9a3a0725
parent 2c423fc0ca
7 changed files with 22 additions and 2 deletions
--- a/group_vars/mail.yml
+++ b/group_vars/mail.yml
@ -2,6 +2,7 @@
 datadisks:
  - {size: 10, type: nvme}
 mem_size: 4192
+
 firewall_in:
  - {proto: tcp, port: 22, from: [172.20.20.0/22]}
  - {proto: tcp, port: 25}
@ -11,3 +12,6 @@ firewall_in:
  - {proto: tcp, port: 587}
  - {proto: tcp, port: 993}
  - {proto: tcp, port: 9100, from: [172.20.20.0/22]}
+
+sssd_allow_groups:
+  - sysadm